Re: [NSELIB/NSE] Updates SMB/MSRPC scripts

[jah <jah () zadkiel plus com>]

Here's what I get against W2K Server SP4 with debugging:

Host script results:
|  MSRPC: List of domains:
|  Domain: 2KSERV
|   |_ SID: S-1-5-21-1960408961-1580436667-839522115
|   |_ Users: Administrator, Guest, IUSR_2KSERV, IWAM_2KSERV, TsInternetUser
|   |_ Creation time: 2008-09-29 11:55:30
|   |_ Min password length: 0 characters
|   |_ Max password age: 42 days
|   |_ Min password age: 0 days
|   |_ Password history length: 0 passwords
|   |_ Lockout threshold: 0 login attempts
|   |_ Lockout duration: 30 minutes
|   |_ Lockout window: 30 minutes
|   |_ Password properties:
|     |_  Password complexity requirements do not exist
|_    |_  Administrator account cannot be locked out
|  MSRPC: List of user accounts:
|  Administrator
|    |_ Domain: 2KSERV
|    |_ RID: 500
|  Guest
|    |_ Domain: 2KSERV
|    |_ RID: 501
|  IUSR_2KSERV
|    |_ Domain: 2KSERV
|    |_ RID: 1001
|    |_ Full name: Built-in account for anonymous access to Internet
Information Services
|    |_ Description: Internet Guest Account
|    |_ Flags: Normal account, Password not required, Password doesn't
expire
|  IWAM_2KSERV
|    |_ Domain: 2KSERV
|    |_ RID: 1002
|    |_ Full name: Built-in account for Internet Information Services to
start out of process applications
|    |_ Description: Launch IIS Process Account
|    |_ Flags: Normal account, Password not required, Password doesn't
expire
|  TsInternetUser
|    |_ Domain: 2KSERV
|_   |_ RID: 1000
|  MSRPC: NetShareEnumAll():
|  Anonymous shares: IPC$
|_ Restricted shares: ADMIN$, C$
Final times for host: srtt: 0 rttvar: 0  to: 100000

Read from C:\Program Files\Nmap: nmap-mac-prefixes nmap-services.
Nmap done: 1 IP address (1 host up) scanned in 0.63 seconds

Very quick result too.  It's a veritable goldmine of info.  Nice work Ron!

jah

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org